This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/wmiyGteEO918b1PMxNCpgfoVaDs.roa File: wmiyGteEO918b1PMxNCpgfoVaDs.roa (raw, json) Hash identifier: ZPhGNaDbDb+DbDzUXj55AFIPAg+DVhgaYwBguflVQCA= Subject key identifier: C2:68:B2:1A:D7:84:3B:DD:7C:6F:53:CC:C4:D0:A9:81:FA:15:68:3B Certificate issuer: /CN=f04d278485ffaea79e910a262533a80b5ab91c8a Certificate serial: 019B7D5C0E1EFF5D2C6C5A5BB3F3371212B6 Authority key identifier: F0:4D:27:84:85:FF:AE:A7:9E:91:0A:26:25:33:A8:0B:5A:B9:1C:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E0nhIX_rqeekQomJTOoC1q5HIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/wmiyGteEO918b1PMxNCpgfoVaDs.roa Signing time: Fri 02 Jan 2026 06:19:03 +0000 ROA not before: Fri 02 Jan 2026 06:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60068 IP address blocks: 185.253.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/8E0nhIX_rqeekQomJTOoC1q5HIo.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/8E0nhIX_rqeekQomJTOoC1q5HIo.mft rsync://rpki.ripe.net/repository/DEFAULT/8E0nhIX_rqeekQomJTOoC1q5HIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:0e:1e:ff:5d:2c:6c:5a:5b:b3:f3:37:12:12:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04d278485ffaea79e910a262533a80b5ab91c8a Validity Not Before: Jan 2 06:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c268b21ad7843bdd7c6f53ccc4d0a981fa15683b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1e:5b:b3:86:3b:4f:f6:38:fc:07:de:9e:b2: 11:95:d9:1b:dc:04:c0:85:4a:80:8b:2f:ea:f7:57: 56:c0:c9:bc:33:9f:2c:a9:d3:50:af:dd:cd:98:5b: b7:93:86:d6:21:fd:06:d4:22:52:6b:4b:fa:08:0b: c3:38:1f:39:33:19:8a:1a:4d:c8:b4:40:89:0d:e8: e5:fb:db:44:50:10:3f:43:6e:e9:e3:86:1e:6f:07: c5:4a:2c:45:a6:85:38:46:a0:1d:77:5c:8e:ab:5e: 5f:c1:6c:fa:62:54:82:4e:2c:be:9b:85:09:23:bf: 0d:ec:8e:3f:4a:1a:b0:ee:57:9b:fe:a2:6a:11:b9: ac:0d:d9:21:95:18:c7:8a:90:56:50:e6:30:26:77: c7:33:c1:dd:e1:46:86:af:b9:8c:2d:cd:12:fd:c7: e0:ea:24:00:28:99:dc:3d:8a:36:a7:6b:54:dd:9a: fb:81:52:b7:0b:c4:eb:a3:e7:7d:7b:84:be:a0:6a: 6f:29:8b:e1:91:8b:4e:7c:97:a3:5c:3d:ac:78:a8: d3:38:6b:5a:de:30:c0:70:b8:e9:e2:da:73:c0:33: 9c:c4:47:94:93:9c:fc:a2:bd:50:30:fb:56:de:7f: 7d:dc:f7:cd:e3:d5:17:0f:9f:83:43:d1:7d:30:ab: bc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:68:B2:1A:D7:84:3B:DD:7C:6F:53:CC:C4:D0:A9:81:FA:15:68:3B X509v3 Authority Key Identifier: keyid:F0:4D:27:84:85:FF:AE:A7:9E:91:0A:26:25:33:A8:0B:5A:B9:1C:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E0nhIX_rqeekQomJTOoC1q5HIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/wmiyGteEO918b1PMxNCpgfoVaDs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/8E0nhIX_rqeekQomJTOoC1q5HIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.253.108.0/24 Signature Algorithm: sha256WithRSAEncryption 71:e9:d1:9e:33:b2:ed:8d:81:38:2f:fc:5a:44:85:1b:da:97: 57:f6:6b:8d:42:56:5b:00:11:45:e7:78:8e:81:4f:a5:f7:f7: b1:3b:f9:fa:6b:54:f0:b3:c9:e5:af:5c:fc:bc:01:ce:06:23: 05:91:c0:46:df:b9:36:9d:78:b1:4d:a9:3e:b8:52:07:b2:e3: 3e:11:70:7a:3b:e2:8f:dd:09:57:dd:96:bf:d1:67:d2:78:af: 85:59:40:15:6e:bc:db:31:8d:68:31:df:ce:04:6c:7b:0c:1d: 2c:16:a8:3e:2b:f4:a0:a8:2c:6a:17:3d:d6:24:12:df:46:19: 53:e4:7e:fc:d7:c8:4e:c1:34:d6:db:42:57:f9:22:79:5c:ce: 55:80:62:7e:08:c3:29:d8:58:71:fa:55:c7:3f:d1:69:95:13: 76:6c:7b:e2:82:a7:58:e1:2f:49:4d:03:2b:10:18:a3:49:c4: 19:52:80:30:5f:4f:a1:1b:c5:b3:14:2e:0d:8c:38:d6:dd:2a: a3:9d:2c:be:ed:db:bf:a4:db:2f:ef:6a:6b:00:e5:58:14:ac: 5b:9d:52:bf:7d:9f:c3:61:d3:cc:ce:98:48:10:09:f8:cb:bf: d8:4f:66:1e:06:c9:6a:23:28:11:d7:37:6e:13:84:f5:3f:df: 6a:16:9e:5d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XA4e/10sbFpbs/M3EhK2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGQyNzg0ODVmZmFlYTc5ZTkxMGEyNjI1MzNhODBiNWFi OTFjOGEwHhcNMjYwMTAyMDYxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjY4YjIxYWQ3ODQzYmRkN2M2ZjUzY2NjNGQwYTk4MWZhMTU2ODNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoR5bs4Y7T/Y4/AfenrIRldkb3ATA hUqAiy/q91dWwMm8M58sqdNQr93NmFu3k4bWIf0G1CJSa0v6CAvDOB85MxmKGk3I tECJDejl+9tEUBA/Q27p44YebwfFSixFpoU4RqAdd1yOq15fwWz6YlSCTiy+m4UJ I78N7I4/Shqw7leb/qJqEbmsDdkhlRjHipBWUOYwJnfHM8Hd4UaGr7mMLc0S/cfg 6iQAKJncPYo2p2tU3Zr7gVK3C8Tro+d9e4S+oGpvKYvhkYtOfJejXD2seKjTOGta 3jDAcLjp4tpzwDOcxEeUk5z8or1QMPtW3n993PfN49UXD5+DQ9F9MKu8MQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMJoshrXhDvdfG9TzMTQqYH6FWg7MB8GA1UdIwQY MBaAFPBNJ4SF/66nnpEKJiUzqAtauRyKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEUwbmhJWF9ycWVla1FvbUpUT29DMXE1SElvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hYTc0MjYtNzExZC00ZjNlLThkZjkt NWMwZTMxNmQyOGI4LzEvd21peUd0ZUVPOTE4YjFQTXhOQ3BnZm9WYURzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9hYTc0MjYtNzExZC00ZjNlLThkZjktNWMwZTMxNmQyOGI4 LzEvOEUwbmhJWF9ycWVla1FvbUpUT29DMXE1SElvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf1sMA0G CSqGSIb3DQEBCwUAA4IBAQBx6dGeM7LtjYE4L/xaRIUb2pdX9muNQlZbABFF53iO gU+l9/exO/n6a1Tws8nlr1z8vAHOBiMFkcBG37k2nXixTak+uFIHsuM+EXB6O+KP 3QlX3Za/0WfSeK+FWUAVbrzbMY1oMd/OBGx7DB0sFqg+K/SgqCxqFz3WJBLfRhlT 5H7818hOwTTW20JX+SJ5XM5VgGJ+CMMp2Fhx+lXHP9FplRN2bHvigqdY4S9JTQMr EBijScQZUoAwX0+hG8WzFC4NjDjW3SqjnSy+7du/pNsv72prAOVYFKxbnVK/fZ/D YdPMzphIEAn4y7/YT2YeBslqIygR1zduE4T1P99qFp5d -----END CERTIFICATE-----Generated at Wed Jan 21 07:21:54 2026 by rpki-client